Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa
File: 323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa (raw, json)
Hash identifier: xJ7jPZiRN5p9CCeavvlkfOq9xqVrWGN0H9fWEY/Ic+k=
Subject key identifier: 2C:17:2B:74:53:E6:FA:57:19:0B:55:A0:83:64:E8:24:AD:68:AB:A0
Certificate issuer: /CN=33D2F1EAE44634CCF2B028FDCA2A11513D83B42D
Certificate serial: 76B06F6E3860B46DCE98879268AFC067033F190B
Authority key identifier: 33:D2:F1:EA:E4:46:34:CC:F2:B0:28:FD:CA:2A:11:51:3D:83:B4:2D
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa
Signing time: Tue 23 Jul 2024 06:52:54 +0000
ROA not before: Tue 23 Jul 2024 06:47:54 +0000
ROA not after: Tue 22 Jul 2025 06:52:54 +0000
asID: 152749
IP address blocks: 2001:df3:d340::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:b0:6f:6e:38:60:b4:6d:ce:98:87:92:68:af:c0:67:03:3f:19:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33D2F1EAE44634CCF2B028FDCA2A11513D83B42D
Validity
Not Before: Jul 23 06:47:54 2024 GMT
Not After : Jul 22 06:52:54 2025 GMT
Subject: CN=2C172B7453E6FA57190B55A08364E824AD68ABA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:aa:bc:e6:30:fe:1d:e1:0a:d6:4f:64:2e:94:
ee:85:66:4b:01:dd:ad:02:1d:7b:e4:40:f1:58:b8:
5d:34:b4:8a:c0:c4:08:a5:d7:6c:d0:b5:ce:bc:1d:
06:18:1b:59:93:a8:e8:6a:de:c1:b7:c6:f6:a3:c6:
55:fe:8e:0c:0d:7e:ea:63:f2:d6:a0:5d:98:b6:71:
0f:c9:04:22:a9:a8:83:91:80:22:aa:6c:38:25:98:
61:d8:38:6b:e3:b6:8e:08:3f:f1:55:b4:ef:aa:f1:
0c:9e:80:9d:5a:8e:f3:7e:1b:02:50:29:d8:b7:7f:
d5:e6:50:fc:67:38:61:8e:94:a5:d1:c1:ae:42:3d:
2f:2f:f3:00:21:a5:41:ce:7d:0c:1c:6c:26:27:b3:
df:cb:fa:85:b2:f9:ee:6d:45:b7:15:38:47:df:54:
75:e1:e1:cc:82:10:fa:f8:1b:3a:7e:c6:c2:07:3f:
ff:94:19:df:90:27:bf:72:0c:6b:79:c8:09:74:eb:
7e:d9:a6:fa:0f:e4:25:ff:fe:e0:13:86:7a:97:9b:
1d:04:fa:80:c1:08:ad:22:00:14:f6:75:ca:d1:37:
16:e8:7e:04:45:5e:d0:ef:cc:e4:64:78:d1:8b:6b:
39:0e:fb:72:fd:5b:e5:56:32:dd:58:3e:7d:b7:7b:
91:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:17:2B:74:53:E6:FA:57:19:0B:55:A0:83:64:E8:24:AD:68:AB:A0
X509v3 Authority Key Identifier:
keyid:33:D2:F1:EA:E4:46:34:CC:F2:B0:28:FD:CA:2A:11:51:3D:83:B4:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D2F1EAE44634CCF2B028FDCA2A11513D83B42D.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b733dcf-9f5e-4775-9ce7-9dd525b44b86/1/323030313a6466333a643334303a3a2f34382d3438203d3e20313532373439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:d340::/48
Signature Algorithm: sha256WithRSAEncryption
72:db:1a:e6:9f:a5:1c:ce:26:bb:c7:1f:4b:f9:4b:02:7d:73:
ff:13:7e:81:f3:80:6a:b4:19:65:b4:4d:4f:21:5c:fb:8f:5c:
56:d5:cd:90:ee:c4:8c:7f:3f:a5:d7:8b:3a:e2:0d:fe:97:6e:
a8:f1:31:11:d1:67:0f:3e:05:ab:3e:8c:a3:e7:5a:f0:05:c5:
e5:cc:c6:8b:94:e4:03:48:f6:bc:95:e4:d9:92:ca:1c:f1:ec:
b5:53:c4:7a:4f:2a:6b:f6:20:ed:91:5a:dc:bd:e6:6f:07:8b:
c8:f3:24:81:68:50:19:ba:88:1a:30:d9:c4:ab:2b:9d:1c:aa:
77:ff:fd:86:40:06:39:d4:ae:32:ed:6b:ee:ee:77:9a:ad:a5:
10:38:6c:31:21:8f:02:9c:68:0b:63:26:09:ca:f9:57:57:9b:
f8:1e:1f:82:a6:e9:6b:f2:f0:a6:c3:3d:2c:81:1d:28:e3:c1:
b8:25:f3:b4:02:60:c1:51:1c:5a:0b:a7:11:f1:dc:fe:dc:77:
81:a7:65:5c:8e:74:5d:75:82:f9:4a:39:02:27:cd:2c:dc:13:
b6:f0:6f:a6:2c:e8:dc:f6:b5:82:dd:6c:bc:27:7f:b6:e3:9e:
75:21:c9:c6:7b:c1:3d:d3:b8:e2:6a:b4:de:9c:05:43:e1:6e:
da:b5:a2:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:43:52 2025 by rpki-client